Email or username:

Password:

Forgot your password?
13 comments
daniel:// stenberg://

@duxsco yes; ngtcp2 is a better, more mature and better performing QUIC implementation

DELETED

@bagder Thanks 🙂 I upgraded to curl 8.9.0 and am testing out:

GENTOO_MIRRORS="distfiles.gentoo.org"
FETCHCOMMAND="curl --fail --silent --show-error --location --http3-only --proto '=https' --tlsv1.3 --retry 2 --connect-timeout 60 -o \"\${DISTDIR}/\${FILE}\" \"\${URI}\""
RESUMECOMMAND="${FETCHCOMMAND} --continue-at -"

... in my #Gentoo's /etc/portage/make.conf

kurtseifried (he/him)

@bagder argh, is there a chart of QUIC support? The Wikipedia page only covers TLS 1.3 and seems to assume everyone did QUIC:

“TLS 1.3 (2018) specified in RFC 8446 includes major optimizations and security improvements. QUIC (2021) specified in RFC 9000 and DTLS 1.3 (2022) specified in RFC 9147 builds on TLS 1.3. The publishing of TLS 1.3 and DTLS 1.3 obsoleted TLS 1.2 and DTLS 1.2.”

en.m.wikipedia.org/wiki/Compar

daniel:// stenberg://

@kurtseifried I can't find any as exhaustive comparisons for QUIC implementations as there are for TLS. I saw this new effort recently that is trying to provide something, but is still lacking: quic-explorer.net/

SpaceLifeForm

@bagder

Well said.

Is LibreSSL alive and functioning?

daniel:// stenberg://

@SpaceLifeForm I'm not following that project very closely but for all I can tell it seems to!

Kornel

@bagder PHK said if he was the NSA and wanted to undermine encryption on the Internet, an easy way would be to contribute patches with misleading docs, obfuscated code, and deceptive/insecure defaults to create the OpenSSL's API.

youtu.be/fwcl17Q0bpk?t=1690

rsalz

I could not resist either :)

Go Up